#VU71740 Information disclosure in Grafana
Vulnerability identifier: #VU71740
Vulnerability risk: Medium
CVSSv3.1: 6.5 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-200
Exploitation vector: Network
Exploit availability: No
Vulnerable software:
Grafana
Web applications /
Other software
Vendor: Grafana Labs
Description
The vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to all headers being cached, when datasource query caching is enabled (including when rotating the Grafana session cookie via a Set-Cookie grafana_session header). A remote attacker can gain unauthorized access to sensitive information on the system.
Mitigation
Install updates from vendor's website.
Vulnerable software versions
Grafana: 9.0.0 - 9.0.9, 8.5.0 - 8.5.20, 8.4.0 - 8.4.11, 8.3.0 - 8.3.11
External links
http://github.com/grafana/grafana/security/advisories/GHSA-2j8f-6whh-frc8
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
